MESSAGE
| DATE | 2016-10-10 |
| FROM | Ruben Safir
|
| SUBJECT | Re: [Hangout-NYLXS] phishtank
|
From hangout-bounces-at-nylxs.com Mon Oct 10 21:58:42 2016
Return-Path:
X-Original-To: archive-at-mrbrklyn.com
Delivered-To: archive-at-mrbrklyn.com
Received: from www.mrbrklyn.com (www.mrbrklyn.com [96.57.23.82])
by mrbrklyn.com (Postfix) with ESMTP id 452D6163EA2;
Mon, 10 Oct 2016 21:58:41 -0400 (EDT)
X-Original-To: hangout-at-nylxs.com
Delivered-To: hangout-at-nylxs.com
Received: from mailbackend.panix.com (mailbackend.panix.com [166.84.1.89])
by mrbrklyn.com (Postfix) with ESMTP id B3781163E9D
for ; Mon, 10 Oct 2016 21:33:59 -0400 (EDT)
Received: from panix2.panix.com (panix2.panix.com [166.84.1.2])
by mailbackend.panix.com (Postfix) with ESMTP id A3F0F174BB;
Mon, 10 Oct 2016 21:33:58 -0400 (EDT)
Received: by panix2.panix.com (Postfix, from userid 20529)
id 76B1A33C9B; Mon, 10 Oct 2016 21:33:58 -0400 (EDT)
Date: Mon, 10 Oct 2016 21:33:58 -0400
From: Ruben Safir
To: Ruben Safir
Message-ID: <20161011013358.GA23747-at-panix.com>
References: <20161011011646.GA20647-at-www.mrbrklyn.com>
MIME-Version: 1.0
In-Reply-To: <20161011011646.GA20647-at-www.mrbrklyn.com>
User-Agent: Mutt/1.6.1 (2016-04-27)
X-Mailman-Approved-At: Mon, 10 Oct 2016 21:58:36 -0400
Cc: hangout-at-nylxs.com, mbenedetto-at-amnh.org
Subject: Re: [Hangout-NYLXS] phishtank
X-BeenThere: hangout-at-nylxs.com
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: NYLXS Discussions List
List-Id: NYLXS Discussions List
List-Unsubscribe: ,
List-Archive:
List-Post:
List-Help:
List-Subscribe: ,
Content-Type: multipart/mixed; boundary="===============1843096592=="
Errors-To: hangout-bounces-at-nylxs.com
Sender: "hangout"
--===============1843096592==
Content-Type: text/plain; charset=unknown-8bit
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
On Mon, Oct 10, 2016 at 09:16:46PM -0400, Ruben Safir wrote:
> Hello
>
> Let me first thank you for taking the time to talk to me this evening.
> I do have a comment, however. phishtank is NOT a dependable source of
> information for blocking access. They are not SORBS. They are owned
> by a private company, openDNS, which is NOT OPEN (I know because we
> have been leaders int he free software moment for decades), and which is
> careless about who they step on. They are a profit center for Cisco.
>
> The pages they are citing as a problem, and there seems to be a single
> page, is not an example of phishing under ANY circumstances. It is just
> part of the mirror from an article taken years ago, May 30th of 2005 as
> a matter of fact. the Times protects its sites with logins and they
> were captured and all the buttons point back to the Times.
>
> This kind of amature use of a tool is reckless on their part and
> on the part Cisco (who owns opendns). You should report their
> negligence and stop filtering on them.
>
>
> Ruben Safir
>
I just want to be clear abou this. Here is the URL
where they promote a PRIVATE solution to phishing
https://www.opendns.com/enterprise-security/solutions/phishing-protection/
Phishing Protection
Many attacks begin with a “spear phishing” email targeting a
business or a specific employee. Often the message contains a link to a
fraudulent website, enabling the attacker to steal login credentials.
“My secure email or Web gateways would detect phishing, right?”
More likely for general mass attacks than for targeted attacks. OpenDNS
can help with both. OpenDNS’s PhishTank data is automatically
integrated and enforced for known phishing sites. Then, similar to our
advanced malware and breach protection, our predictive intelligence can
discover Internet infrastructure used to host phishing sites—before
your employees ever receive the phishing email.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Unfortunately, aside from being incapable of understanding what phiphing
looks like, they also fail the ASCII website test.
They are a NASTY private company that feeds bad data and has no means
to fix their errors, which they have no interest in doing so anyway.
This is a problem with your networks policy and you should fix it.
If you want to stop phiphing, stop brining in mail from your domain from
addresses outside of your domain. That will end about 100% of the
internal threat to your network.
or you can hire me.
THIS does not fix your problem.
Ruben Safir
>
> --
> So many immigrant groups have swept through our town
> that Brooklyn, like Atlantis, reaches mythological
> proportions in the mind of the world - RI Safir 1998
> http://www.mrbrklyn.com
>
> DRM is THEFT - We are the STAKEHOLDERS - RI Safir 2002
> http://www.nylxs.com - Leadership Development in Free Software
> http://www2.mrbrklyn.com/resources - Unpublished Archive
> http://www.coinhangout.com - coins!
> http://www.brooklyn-living.com
>
> Being so tracked is for FARM ANIMALS and and extermination camps,
> but incompatible with living as a free human being. -RI Safir 2013
>
--===============1843096592==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
hangout mailing list
hangout-at-nylxs.com
http://www.nylxs.com/
--===============1843096592==--
--===============1843096592==
Content-Type: text/plain; charset=unknown-8bit
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
On Mon, Oct 10, 2016 at 09:16:46PM -0400, Ruben Safir wrote:
> Hello
>
> Let me first thank you for taking the time to talk to me this evening.
> I do have a comment, however. phishtank is NOT a dependable source of
> information for blocking access. They are not SORBS. They are owned
> by a private company, openDNS, which is NOT OPEN (I know because we
> have been leaders int he free software moment for decades), and which is
> careless about who they step on. They are a profit center for Cisco.
>
> The pages they are citing as a problem, and there seems to be a single
> page, is not an example of phishing under ANY circumstances. It is just
> part of the mirror from an article taken years ago, May 30th of 2005 as
> a matter of fact. the Times protects its sites with logins and they
> were captured and all the buttons point back to the Times.
>
> This kind of amature use of a tool is reckless on their part and
> on the part Cisco (who owns opendns). You should report their
> negligence and stop filtering on them.
>
>
> Ruben Safir
>
I just want to be clear abou this. Here is the URL
where they promote a PRIVATE solution to phishing
https://www.opendns.com/enterprise-security/solutions/phishing-protection/
Phishing Protection
Many attacks begin with a “spear phishing” email targeting a
business or a specific employee. Often the message contains a link to a
fraudulent website, enabling the attacker to steal login credentials.
“My secure email or Web gateways would detect phishing, right?”
More likely for general mass attacks than for targeted attacks. OpenDNS
can help with both. OpenDNS’s PhishTank data is automatically
integrated and enforced for known phishing sites. Then, similar to our
advanced malware and breach protection, our predictive intelligence can
discover Internet infrastructure used to host phishing sites—before
your employees ever receive the phishing email.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Unfortunately, aside from being incapable of understanding what phiphing
looks like, they also fail the ASCII website test.
They are a NASTY private company that feeds bad data and has no means
to fix their errors, which they have no interest in doing so anyway.
This is a problem with your networks policy and you should fix it.
If you want to stop phiphing, stop brining in mail from your domain from
addresses outside of your domain. That will end about 100% of the
internal threat to your network.
or you can hire me.
THIS does not fix your problem.
Ruben Safir
>
> --
> So many immigrant groups have swept through our town
> that Brooklyn, like Atlantis, reaches mythological
> proportions in the mind of the world - RI Safir 1998
> http://www.mrbrklyn.com
>
> DRM is THEFT - We are the STAKEHOLDERS - RI Safir 2002
> http://www.nylxs.com - Leadership Development in Free Software
> http://www2.mrbrklyn.com/resources - Unpublished Archive
> http://www.coinhangout.com - coins!
> http://www.brooklyn-living.com
>
> Being so tracked is for FARM ANIMALS and and extermination camps,
> but incompatible with living as a free human being. -RI Safir 2013
>
--===============1843096592==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
hangout mailing list
hangout-at-nylxs.com
http://www.nylxs.com/
--===============1843096592==--
|
|
